Hospitality.today™

Booking.com scam targets hotel guest messages

Compromised hotel accounts are being used to send fraudulent payment requests through trusted booking communications

Mar 5, 2026

A recent investigation reveals how cybercriminals are using compromised hotel accounts on Booking.com to send fraudulent payment requests directly to guests. After gaining access to a property’s extranet account, attackers use the platform’s official messaging system to contact travelers and ask them to verify payment details or risk having their reservation canceled. Because the messages appear to come from the hotel and often include real booking information, many guests trust them and enter their card details on fake payment pages. The case highlights a growing cybersecurity risk for hotels, where compromised systems can quickly turn into guest-facing fraud.

Key takeaways

  • Compromised hotel accounts: Attackers gain access to hotel extranet logins through phishing, malware, or stolen credentials, allowing them to send messages to guests from legitimate property accounts.
  • Fraud through trusted channels: Once inside the account, criminals use Booking.com’s official guest messaging system, making fraudulent requests appear authentic and trustworthy.
  • Payment verification scams: Guests are often told they must reconfirm their credit card details to avoid cancellation, prompting them to follow links to fake payment pages.
  • Real reservation data increases credibility: Because attackers operate inside legitimate hotel accounts, messages may include accurate booking details, making the scam more convincing.
  • Guest trust at risk: When fraud happens through official hotel communication channels, guests may blame the property, potentially damaging the hotel’s reputation and guest relationships.
  • Cybersecurity becomes an operational priority: The incident underscores the importance for hotels to strengthen account security, train staff to recognize phishing attempts, and regularly review access to booking platform systems.

Source: cybernews

Enjoying this analysis? Hospitality.today delivers daily insights on hotel distribution, AI trends, and travel commerce — straight to your inbox. Subscribe for free at Hospitality.today →

Related must-reads

JOIN 34,000+ HOTELIERS

Get our Daily Brief in your inbox

Consumers are changing the face of hospitality - from online shopping to personalized guest journeys and digitalized guest experiences ...
we've got you covered.

By submitting this form, you agree to receive email communication from Hospitality.today and its partners.